Overview

overview

10

Static

static

10

091662897f...18.exe

windows7-x64

091662897f...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    091662897ff4903aceab49d633dd1d1f_JaffaCakes118

  • Size

    72KB

  • MD5

    091662897ff4903aceab49d633dd1d1f

  • SHA1

    0e11bca17f43e23e5b9f61aed67db5123c60678a

  • SHA256

    d7f94e4187da30820cc1ed85779bdd03e5921b796375c8cf22e980c940ce4e00

  • SHA512

    354344a278b9cb7a8a7d3c133e506a9c572821e1059fa2400bde56b728cc6a2a129a4b712720dd16fdcd1c27ad48e7d0ba72215873f339f73fe6a192504e1ae4

  • SSDEEP

    1536:IQFuTJQa72no7/ypI1T+y28fef3R8Kx2PdeEMb+KR0Nc8QsJq39:4a4tT+y2HB8NPgEe0Nc8QsC9

Score
10/10
metasploit

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

192.168.1.200:4444

Signatures

  • Metasploit family
    metasploit
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 091662897ff4903aceab49d633dd1d1f_JaffaCakes118
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections